Grip Security and SecurityScorecard announced a strategic partnership to introduce a new approach to managing SaaS security risks. This collaboration offers combined risk ratings for both SaaS vendor risk and enterprise identity risks, providing organizations with:
- Comprehensive Risk Assessment: Organizations can assess the risks of SaaS vendors and the enterprise identity risk factors, such as the number of users, growth in usage, and SaaS-to-SaaS connections.
- Measure Vendor Risk for Shadow SaaS: Enterprises can now monitor shadow SaaS risks by leveraging Grip for discovery and onboarding and SecurityScorecard's comprehensive vendor risk ratings to monitor and rate the cybersecurity posture of these previously unmanaged applications.
- Measure Identity Risks for Managed SaaS: Security teams can measure SaaS identity risk factors and assess the efficacy of their SaaS security programs. The insights can also accelerate programs such as single sign-on (SSO) everywhere and assess supply chain risks.
- Proactive Risk Management: With combined risk ratings, organizations can continuously monitor and enhance their security posture. The real-time insights from SecurityScorecard and proactive SaaS risk management workflows from Grip Security enable businesses to stay ahead of emerging threats and ensure the integrity of their SaaS environments.
“SecurityScorecard has the world’s largest risk and threat intelligence dataset, and they are an ideal partner for Grip Security,” said Lior Yaari, chief executive officer and co-founder at Grip Security. “The two companies share the common vision of enabling the modern organization to use any SaaS their employees choose rather than constraining their productivity by centrally dictating the applications they can use.”
“Communicating cyber risk to executives is security’s perennial challenge that SecurityScorecard solves. Our new partnership with Grip Security provides ongoing telemetry about the security posture of Gen AI and other SaaS applications. We continue to deliver on our vision of holistically measuring and resolving cyber risk across the digital ecosystem,” said Sachin Bansal, president of SecurityScorecard.
SaaS Security Risk Management Becoming More Critical
SaaS-related breaches are becoming increasingly more common as organizations adopt more cloud-based services to support their operations. High-profile identity risk-related incidents involving companies like Okta and Snowflake have underscored the vulnerabilities that can arise when SaaS risks are not adequately secured. These breaches compromise sensitive data and expose organizations to significant financial and reputational damage. The growing frequency and sophistication of these attacks highlight the urgent need for comprehensive security solutions that can address both SaaS vendor and enterprise identity risks.
The partnership also strengthens compliance programs by identifying gaps in SaaS risk assessments required for regulations such as the Sarbanes-Oxley Act, NYDFS (23 NYCRR 500), and Gramm-Leach-Bailey-Act, as well as numerous privacy acts.
Free SaaS Identity Risk Assessments
To help organizations better understand and mitigate their SaaS security risks, Grip Security is offering a complimentary SaaS Identity Risk Assessment for qualifying SecurityScorecard customers. This comprehensive assessment provides an in-depth analysis of a company’s current SaaS environment, highlights any unmanaged SaaS applications, and scores the internal identity risks. The vendor risk for these unmanaged applications can be assessed through SecurityScorecard’s risk ratings.
